
owasp-agentic
✓ Official★ 1,200by microsoft · part of microsoft/hve-core
OWASP Agentic Security Top 10 vulnerability knowledge base for identifying, assessing, and remediating security risks in AI agent systems - Brought to you by…
This is the playbook your agent receives when the skill activates — you don't need to read it to use the skill, but it's here to audit before installing.
by microsoft
OWASP Agentic Security Top 10 vulnerability knowledge base for identifying, assessing, and remediating security risks in AI agent systems - Brought to you by…
npx skills add https://github.com/microsoft/hve-core --skill owasp-agentic
Download ZIPGitHub1.2k
OWASP® Agentic Top 10 — Skill Entry
This SKILL.md is the entrypoint for the OWASP Agentic Top 10 skill.
The skill encodes the OWASP Top 10 for Agentic Applications (2026) as structured, machine-readable references that an agent can query to identify, assess, and remediate security risks in AI agent systems.
Normative references (Agentic Top 10)
Skill layout
-
SKILL.md— this file (skill entrypoint). -
references/— the Agentic Top 10 normative documents. -
00-vulnerability-index.md— index of all vulnerability identifiers, categories, and cross-references. -
01through10— one document per vulnerability aligned with OWASP Agentic Security numbering.
Third-Party Attribution
Copyright © OWASP Foundation. OWASP® Top 10 for Agentic Applications (2026) content is derived from works by the OWASP Foundation, licensed under CC BY-SA 4.0 (https://creativecommons.org/licenses/by-sa/4.0/). Source: https://genai.owasp.org/resource/owasp-top-10-for-agentic-applications-for-2026/ Modifications: Vulnerability descriptions restructured into agent-consumable reference documents with added detection and remediation guidance. OWASP® is a registered trademark of the OWASP Foundation. Use does not imply endorsement.
npx skills add https://github.com/microsoft/hve-core --skill owasp-agenticRun this in your project — your agent picks the skill up automatically.
No common issues documented yet. If you hit a problem, the repository's GitHub Issues page is the best place to look.